CVE-2000-0904

Voyager web server 2.01B - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0904. PoCs published by neonbunny.

AI-analyzed exploit summary The writeup describes multiple vulnerabilities in the QNX Voyager demo disk web server, including directory traversal, insufficient security restrictions, and exposure of sensitive system files. It provides example URLs to exploit these issues but does not include executable code.

Description

Voyager web server 2.01B in the demo disks for QNX 405 stores sensitive web client information in the .photon directory in the web document root, which allows remote attackers to obtain that information.

Exploits (1)

exploitdb WRITEUP VERIFIED
by neonbunny · textremotemultiple
https://www.exploit-db.com/exploits/20207

The writeup describes multiple vulnerabilities in the QNX Voyager demo disk web server, including directory traversal, insufficient security restrictions, and exposure of sensitive system files. It provides example URLs to exploit these issues but does not include executable code.

Classification
Writeup 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: QNX Voyager demo disk web server
No auth needed
Prerequisites: Network access to the target web server
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Vendor Advisory mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/79956
Exploit, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1648

Scores

EPSS 0.0268
EPSS Percentile 84.0%

Details

Status published
Products (1)
qnx/voyager 2.01b
Published Dec 19, 2000
Tracked Since Feb 18, 2026